Vulnerabilities > Qualcomm > Wcd9385 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-03-10 CVE-2022-33244 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout
network
low complexity
qualcomm CWE-617
7.5
2023-03-10 CVE-2022-33245 Use After Free vulnerability in Qualcomm products
Memory corruption in WLAN due to use after free
local
low complexity
qualcomm CWE-416
7.8
2023-03-10 CVE-2022-33250 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.
network
low complexity
qualcomm CWE-617
7.5
2023-03-10 CVE-2022-33254 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem while processing SIB1 Message.
network
low complexity
qualcomm CWE-617
7.5
2023-03-10 CVE-2022-33256 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in Multi-mode call processor.
network
low complexity
qualcomm CWE-129
critical
9.8
2023-03-10 CVE-2022-33257 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
local
high complexity
qualcomm CWE-367
7.0
2023-03-10 CVE-2022-33260 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to stack based buffer overflow in core while sending command from USB of large size.
local
low complexity
qualcomm CWE-787
7.8
2023-03-10 CVE-2022-33272 Reachable Assertion vulnerability in Qualcomm products
Transient DOS in modem due to reachable assertion.
network
low complexity
qualcomm CWE-617
7.5
2023-03-10 CVE-2022-33278 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
local
low complexity
qualcomm CWE-120
7.8
2023-03-10 CVE-2022-33309 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
network
low complexity
qualcomm CWE-125
7.5